3 matches found
Wordpress plugin Pods <= 2.4.3 XSS and CSRF vulnerabilities
Vulnerability title: Wordpress plugin Pods = 2.4.3 XSS and CSRF vulnerabilities vulnerabilities Author: Pietro Oliva CVE: CVE-2014-7956, CVE-2014-7957 Product: pods Affected version: pods = 2.4.3 Vulnerabilities fixed in version: 2.5 XSS vulnerability CVE-2014-7956, authentication is needed:...
CVE-2014-7956
CVE-2014-7956: Affected product is the Pods WordPress plugin (versions
WordPress Pods 2.4.3 CSRF / Cross Site Scripting
Vulnerability title: Wordpress plugin Pods alert'xss' target="http://localhost"; for i=0; i'; CSRF 2 delete pods plugin data: CSRF 3 deactivate pods and delete data: CSRF 4 enable "roles and capab...